Offline Explorer 1.4 before Service Release 2 allows remote malicious users to read arbitrary files by specifying the drive letter (e.g. C:) in the requested URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
metaproducts offline explorer 1.3x |
||
metaproducts offline explorer 1.0x |
||
metaproducts offline explorer 1.1x |
||
metaproducts offline explorer 1.2x |